Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: iU/JoSM24NB+eBiNiIyyDPv4bowoUP/6hahlYH0mddQ=
Subject key identifier: 48:CD:B5:44:DF:EF:05:06:B0:0C:33:50:65:CA:11:24:A4:B8:59:0B
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 0196C3B952019B4CB46EF39B53DF3F95E031
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 1538
Signing time: Mon 12 May 2025 09:00:24 +0000
Manifest this update: Mon 12 May 2025 09:00:24 +0000
Manifest next update: Tue 13 May 2025 09:00:24 +0000
Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: 9CiTMOMAajNygBYmNykigyDeoiL83SDXzeA4qaRjYdA=)
2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:52:01:9b:4c:b4:6e:f3:9b:53:df:3f:95:e0:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: May 12 09:00:24 2025 GMT
Not After : May 13 09:00:24 2025 GMT
Subject: CN=48cdb544dfef0506b00c335065ca1124a4b8590b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:01:61:87:93:93:0d:64:fd:08:71:d9:a5:91:
f0:10:a9:5b:57:8c:8e:db:70:45:b1:60:98:fe:1f:
64:cd:43:86:3a:9e:39:04:d9:e9:3f:f7:62:62:4e:
45:4b:d1:fc:c0:51:26:57:8b:dd:c5:08:0f:56:8e:
16:35:2f:3d:c2:78:59:07:23:61:9c:d4:6f:9f:ef:
6b:85:47:0e:5d:6b:3c:db:7e:a7:d2:5a:d4:12:88:
49:12:72:fa:92:d0:ab:de:e3:52:08:c6:22:92:e4:
b5:40:32:b3:43:92:e0:09:a7:2a:3a:32:bc:27:83:
98:5e:a1:2e:ad:dc:01:08:1a:e9:fc:3c:8f:43:b0:
e7:d0:69:63:f0:55:c7:1c:81:ce:46:46:13:1d:50:
44:f1:5b:d3:df:31:68:0b:71:8a:d5:38:f1:96:fb:
bd:2a:72:f8:f2:13:d5:bc:23:fe:8e:35:d0:49:05:
35:d3:14:2f:29:58:62:86:00:06:8d:f0:f4:7b:71:
a0:fb:21:77:c2:43:5e:66:b2:58:1f:32:77:40:21:
7e:df:5b:a5:dc:e2:0f:6d:83:31:42:1b:1c:33:04:
8e:e2:e2:e1:c1:1a:1c:ab:64:62:f1:03:4a:db:59:
46:50:88:b6:15:17:b8:89:9d:dc:fe:73:12:f4:c8:
60:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CD:B5:44:DF:EF:05:06:B0:0C:33:50:65:CA:11:24:A4:B8:59:0B
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:7b:a9:6d:af:d5:df:e9:69:f5:08:ad:f2:af:46:c8:07:26:
95:6d:b2:e0:55:32:4d:70:8e:3a:49:d0:54:a1:43:97:27:01:
b2:6b:27:18:6d:93:5d:ea:2d:cf:44:58:2b:82:92:80:34:77:
56:36:e8:09:a0:03:2a:28:85:de:00:41:8a:a1:13:3a:64:17:
ae:07:a0:84:03:30:f9:71:38:56:4d:42:3b:6b:69:ef:dd:f9:
42:26:5d:d3:cf:72:5d:f1:a7:af:31:ea:7e:6e:7a:49:e8:fd:
27:c2:09:97:15:da:05:af:85:f7:20:01:ba:2c:7e:61:43:54:
4c:7a:cf:a1:dc:8d:83:23:1c:3f:ba:b0:49:83:f7:73:07:db:
c7:03:cd:78:36:56:7d:13:b3:50:c2:b1:82:2c:d6:97:5b:8c:
5a:88:99:2b:94:e0:77:7e:c9:f3:84:b1:fa:8b:ab:aa:6f:13:
77:b4:69:a1:a3:00:60:e2:09:9e:f5:e9:ff:26:5c:ec:6e:0e:
17:33:19:02:5e:a1:92:fa:2b:45:4a:11:cd:2f:5b:b6:48:68:
37:1f:25:af:ab:b2:c1:90:88:3b:12:ed:fb:83:f1:b2:0b:f2:
4f:e4:e3:a2:83:e2:d5:ad:8a:95:c9:be:32:10:b1:fd:74:ab:
2f:d5:1c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:28:38 2025 by rpki-client